Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft
File: zRQ2kCMKRApot6iqmCefL2Xf7ig.mft (raw, json)
Hash identifier: KEkO+I6VAadY6oNuuPWzWGPGfSevmgs4CLsdBMhY+40=
Subject key identifier: 6E:CF:4E:10:A9:F7:67:FE:8C:B9:B4:94:A2:98:78:36:C0:36:28:E1
Authority key identifier: CD:14:36:90:23:0A:44:0A:68:B7:A8:AA:98:27:9F:2F:65:DF:EE:28
Certificate issuer: /CN=cd143690230a440a68b7a8aa98279f2f65dfee28
Certificate serial: 01963A2E2CE34A2769C8C0FCB7BFEE86538F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zRQ2kCMKRApot6iqmCefL2Xf7ig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft
Manifest number: 11F2
Signing time: Tue 15 Apr 2025 16:00:26 +0000
Manifest this update: Tue 15 Apr 2025 16:00:26 +0000
Manifest next update: Wed 16 Apr 2025 16:00:26 +0000
Files and hashes: 1: vHQRV0jRUXExLLAYBdY2ODpzWoo.roa (hash: 7UhAMCr3OjHllJdnfdmjdJInrKVauXU3M4e5nn0fWuA=)
2: zRQ2kCMKRApot6iqmCefL2Xf7ig.crl (hash: A9kx0U10xlBQVNQeGYkYY3P51qwQiQKfjLSeLbugy6A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft
rsync://rpki.ripe.net/repository/DEFAULT/zRQ2kCMKRApot6iqmCefL2Xf7ig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 16 Apr 2025 15:22:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3a:2e:2c:e3:4a:27:69:c8:c0:fc:b7:bf:ee:86:53:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd143690230a440a68b7a8aa98279f2f65dfee28
Validity
Not Before: Apr 15 16:00:26 2025 GMT
Not After : Apr 16 16:00:26 2025 GMT
Subject: CN=6ecf4e10a9f767fe8cb9b494a2987836c03628e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:9e:aa:81:81:08:13:34:db:51:f4:3e:72:bb:
67:38:bd:c2:2a:80:af:f5:55:0a:9d:4e:46:83:48:
11:9c:68:f4:23:e2:92:55:ad:e7:59:85:90:ae:34:
40:93:35:e1:28:64:e6:79:cc:c5:bb:e5:71:26:d0:
b4:22:41:a7:d3:89:de:a2:87:3a:ea:d3:10:95:d6:
87:f4:30:73:68:ea:51:05:db:4e:85:bc:46:00:b9:
84:10:71:ec:af:d1:a0:22:75:b7:c6:6d:e7:81:ea:
4d:e6:82:65:e2:58:2e:6d:90:f7:83:bb:5a:0b:27:
9e:a3:09:9c:47:f4:77:6e:f2:53:6a:a9:d4:64:c5:
22:01:8c:ea:47:44:89:16:4c:a8:d3:71:55:c5:1d:
47:e6:c4:c8:06:36:de:ef:51:6a:c9:44:9f:e6:1f:
e8:ac:ad:ed:5e:15:00:f2:2d:45:49:ab:ce:fb:7c:
79:7a:24:01:dc:88:b6:8f:37:dc:d2:92:4a:29:d5:
25:96:32:b0:51:ca:65:ee:fa:d1:68:2f:f0:b8:22:
c9:6d:35:0c:e2:69:9b:74:27:5e:56:52:36:a5:33:
22:6a:14:a8:98:b1:d6:3e:02:6a:0d:69:5d:00:6e:
c9:86:dd:c4:ba:88:89:e3:70:68:cb:f5:98:78:b3:
c3:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:CF:4E:10:A9:F7:67:FE:8C:B9:B4:94:A2:98:78:36:C0:36:28:E1
X509v3 Authority Key Identifier:
keyid:CD:14:36:90:23:0A:44:0A:68:B7:A8:AA:98:27:9F:2F:65:DF:EE:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zRQ2kCMKRApot6iqmCefL2Xf7ig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:12:39:c0:54:25:77:a4:bb:97:a3:bc:d3:60:16:da:8d:1d:
0a:7f:29:21:f9:31:8f:b5:b9:28:3f:3f:c5:1f:5c:89:e0:83:
4a:c9:e4:75:e9:15:5e:50:d4:2c:41:3c:a8:19:fa:03:02:88:
e7:fd:d0:20:17:f1:8d:e8:ba:79:64:a8:2c:16:c0:13:ae:6f:
f2:b4:37:8d:ad:61:d6:72:c5:06:51:ad:f5:5f:93:d5:49:4a:
c9:4d:1f:9e:a7:52:68:34:03:4f:13:41:19:1b:38:69:d1:9d:
20:f7:88:c9:84:77:22:91:e1:24:3d:42:45:9d:13:bb:84:bb:
2a:98:66:d4:35:a6:b7:46:c8:ba:06:42:b0:06:91:84:bb:76:
31:c4:3c:99:2e:ce:d9:b3:9a:de:ee:7a:2f:ae:b3:c9:f6:ee:
b8:d2:3d:3d:3f:de:17:16:f5:b6:5c:cb:94:0b:df:ae:ba:de:
20:fb:65:62:35:91:68:bb:be:25:6b:95:ff:4e:95:52:7e:ed:
65:9c:1b:1b:18:3b:b5:7f:22:0e:f6:d2:27:25:79:96:ee:0e:
fd:ed:ea:31:b4:b1:6a:21:37:58:1c:f0:63:5c:97:03:7c:a1:
a9:90:7d:9f:80:4b:5e:0b:37:21:a8:73:01:3a:34:df:40:d3:
66:c9:ad:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 22:05:18 2025 by rpki-client